Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

153 advisories

Loading
Mautic's Predictable Page Indexing Might Lead to Sensitive Data Exposure Moderate
CVE-2025-5257 was published for mautic/core (Composer) May 28, 2025
n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC... Low Unreviewed
CVE-2025-2826 was published May 28, 2025
On affected platforms running Arista EOS with Traffic Policies configured the vulnerability will... High Unreviewed
CVE-2024-9448 was published May 8, 2025
An Unchecked Input for Loop Condition in RT-Labs P-Net version 1.0.1 or earlier allows an... Moderate Unreviewed
CVE-2025-32399 was published May 7, 2025
markdownify allows large headline prefixes such as <h9999999>, which causes memory consumption Low
CVE-2025-46656 was published for markdownify (pip) Apr 27, 2025
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric... Moderate Unreviewed
CVE-2025-3511 was published Apr 25, 2025
GoBGP crashes in the flowspec parser Moderate
CVE-2025-43972 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
GoBGP does not properly check the input length Moderate
CVE-2025-43970 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
In LibRaw before 0.21.4, tag 0x412 processing in phase_one_correct in decoders/load_mfbacks.cpp... Low Unreviewed
CVE-2025-43964 was published Apr 21, 2025
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has... Low Unreviewed
CVE-2025-32415 was published Apr 17, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2025-25178 was published Apr 4, 2025
A code execution vulnerability exists in the Xiaomi Game center application product. The... High Unreviewed
CVE-2024-45351 was published Mar 26, 2025
On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur... Moderate Unreviewed
CVE-2024-8000 was published Mar 4, 2025
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where... Low Unreviewed
CVE-2024-53878 was published Feb 25, 2025
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where... Low Unreviewed
CVE-2024-53879 was published Feb 25, 2025
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed
CVE-2023-20508 was published Feb 12, 2025
Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed
CVE-2023-20582 was published Feb 12, 2025
Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed
CVE-2023-20515 was published Feb 12, 2025
Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks,... Low Unreviewed
CVE-2023-20581 was published Feb 12, 2025
Improper access control in the DRTM firmware could allow a privileged attacker to perform... Low Unreviewed
CVE-2023-31331 was published Feb 12, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7... Low Unreviewed
CVE-2025-24100 was published Jan 28, 2025
An issue in the 690b33e1-0462-4e84-9bea-c7552b45432a.sys component of Asus GPU Tweak II Program... High Unreviewed
CVE-2024-55410 was published Jan 7, 2025
An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers... High Unreviewed
CVE-2024-55407 was published Jan 6, 2025
In Modem, there is a possible system crash due to improper input validation. This could lead to... High Unreviewed
CVE-2024-20149 was published Jan 6, 2025
In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user... Moderate Unreviewed
CVE-2024-56716 was published Dec 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database